Known Vulnerabilities for RSS Feed Widget by Fahad Mahmood
Listed below are 9 of the newest known vulnerabilities associated with "RSS Feed Widget" by "Fahad Mahmood".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-54443 json | Dashy is a self-hostable personal dashboard. From 1.9.4 until 3.2.0, the Dashy RSS Widget in src/components/Widgets/RssFeed.v... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-5159 json | The Royal Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Instagram Feed widge... | Not Provided | 2026-05-05 | 2026-05-05 |
| CVE-2025-69349 json | Missing Authorization vulnerability in Fahad Mahmood RSS Feed Widget rss-feed-widget allows Exploiting Incorrectly Configured... | Not Provided | 2026-01-06 | 2026-04-27 |
| CVE-2025-68595 json | Missing Authorization vulnerability in Trustindex Widgets for Social Photo Feed social-photo-feed-widget allows Exploiting In... | Not Provided | 2025-12-24 | 2026-04-27 |
| CVE-2025-58241 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in snapwidget SnapWidget S... | Not Provided | 2025-09-22 | 2026-04-23 |
| CVE-2025-53300 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in douglaskarr Podcast Fee... | Not Provided | 2025-06-27 | 2026-04-23 |
| CVE-2025-31760 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in snapwidget SnapWidget S... | Not Provided | 2025-04-01 | 2026-04-23 |
| CVE-2024-32690 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fahad Mahmood RSS Feed ... | Not Provided | 2024-04-22 | 2026-04-28 |
| CVE-2023-52136 json | Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Custom Twitter Feeds – A Tweets Widget or X Feed Widget.Th... | Not Provided | 2024-01-05 | 2026-04-28 |